summaryrefslogtreecommitdiffstats
path: root/src/DotNetOpenId.Test/Provider/OpenIdProviderTest.cs
blob: ff51461449f67b0a2b91409a69e2e7bee40cde83 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126

using System;
using System.Collections.Specialized;
using DotNetOpenId.Provider;
using DotNetOpenId.RelyingParty;
using DotNetOpenId.Test.Mocks;
using NUnit.Framework;
using ProviderMemoryStore = DotNetOpenId.AssociationMemoryStore<DotNetOpenId.AssociationRelyingPartyType>;

namespace DotNetOpenId.Test.Provider {
	[TestFixture]
	public class OpenIdProviderTest {
		readonly Uri providerEndpoint = new Uri("http://someendpoint");
		readonly Uri emptyRequestUrl = new Uri("http://someendpoint/request");

		[SetUp]
		public void Setup() {
			if (!UntrustedWebRequest.WhitelistHosts.Contains("localhost"))
				UntrustedWebRequest.WhitelistHosts.Add("localhost");
		}

		[TearDown]
		public void TearDown() {
			MockHttpRequest.Reset();
		}

		/// <summary>
		/// Verifies that without an ASP.NET context, the default constructor fails.
		/// </summary>
		[Test, ExpectedException(typeof(InvalidOperationException))]
		public void CtorDefault() {
			OpenIdProvider op = new OpenIdProvider();
		}

		[Test]
		public void CtorNonDefault() {
			OpenIdProvider op = new OpenIdProvider(new ProviderMemoryStore(),
				providerEndpoint, emptyRequestUrl, new NameValueCollection());
		}

		[Test, ExpectedException(typeof(ArgumentNullException))]
		public void CtorNullStore() {
			OpenIdProvider op = new OpenIdProvider(null, providerEndpoint,
				emptyRequestUrl, new NameValueCollection());
		}

		[Test, ExpectedException(typeof(ArgumentNullException))]
		public void CtorNullEndpoint() {
			OpenIdProvider op = new OpenIdProvider(new ProviderMemoryStore(),
				null, emptyRequestUrl, new NameValueCollection());
		}

		[Test, ExpectedException(typeof(ArgumentNullException))]
		public void CtorNullRequestUrl() {
			OpenIdProvider op = new OpenIdProvider(new ProviderMemoryStore(),
				providerEndpoint, null, new NameValueCollection());
		}

		[Test, ExpectedException(typeof(ArgumentNullException))]
		public void CtorNullQuery() {
			OpenIdProvider op = new OpenIdProvider(new ProviderMemoryStore(),
				providerEndpoint, emptyRequestUrl, null);
		}

		[Test]
		public void RequestNullOnEmptyRequest() {
			OpenIdProvider op = new OpenIdProvider(new ProviderMemoryStore(),
				providerEndpoint, emptyRequestUrl, new NameValueCollection());
			Assert.IsNull(op.Request);
		}

		[Test]
		public void BasicUnsolicitedAssertion() {
			Mocks.MockHttpRequest.RegisterMockRPDiscovery();
			TestSupport.Scenarios scenario = TestSupport.Scenarios.AutoApproval;
			Identifier claimedId = TestSupport.GetMockIdentifier(scenario, ProtocolVersion.V20);
			Identifier localId = TestSupport.GetDelegateUrl(scenario);

			OpenIdProvider op = TestSupport.CreateProvider(null);
			IResponse assertion = op.PrepareUnsolicitedAssertion(TestSupport.Realm, claimedId, localId);
			var rpResponse = TestSupport.CreateRelyingPartyResponse(TestSupport.RelyingPartyStore, assertion);
			Assert.AreEqual(AuthenticationStatus.Authenticated, rpResponse.Status);
			Assert.AreEqual(claimedId, rpResponse.ClaimedIdentifier);
		}

		[Test]
		public void UnsolicitedAssertionWithBadCapitalization() {
			Mocks.MockHttpRequest.RegisterMockRPDiscovery();
			TestSupport.Scenarios scenario = TestSupport.Scenarios.AutoApproval;
			Identifier claimedId = TestSupport.GetMockIdentifier(scenario, ProtocolVersion.V20);
			claimedId = claimedId.ToString().ToUpper(); // make all caps, which is not right
			Identifier localId = TestSupport.GetDelegateUrl(scenario);

			OpenIdProvider op = TestSupport.CreateProvider(null);
			IResponse assertion = op.PrepareUnsolicitedAssertion(TestSupport.Realm, claimedId, localId);
			var rpResponse = TestSupport.CreateRelyingPartyResponse(TestSupport.RelyingPartyStore, assertion);
			Assert.AreEqual(AuthenticationStatus.Failed, rpResponse.Status);
		}

		/// <summary>
		/// Verifies that OP will properly report RP versions in requests.
		/// </summary>
		[Test]
		public void RelyingPartyVersion() {
			Protocol simulatedVersion = Protocol.v11;
			UriIdentifier id = TestSupport.GetIdentityUrl(TestSupport.Scenarios.AutoApproval, simulatedVersion.ProtocolVersion);

			// make up some OpenID 1.x looking message...
			NameValueCollection rp10Request = new NameValueCollection();
			rp10Request[simulatedVersion.openid.mode] = simulatedVersion.Args.Mode.checkid_immediate;
			rp10Request[simulatedVersion.openid.identity] = id;
			rp10Request[simulatedVersion.openid.return_to] = TestSupport.ReturnTo.AbsoluteUri;
			rp10Request[simulatedVersion.openid.Realm] = TestSupport.Realm;

			OpenIdProvider op = TestSupport.CreateProvider(rp10Request);
			Assert.AreEqual(simulatedVersion.ProtocolVersion,
				((DotNetOpenId.Provider.IAuthenticationRequest)op.Request).RelyingPartyVersion);

			// Verify V2.0 reporting.
			var rp20Request = TestSupport.CreateRelyingPartyRequest(true, TestSupport.Scenarios.AutoApproval, ProtocolVersion.V20, false);
			TestSupport.CreateRelyingPartyResponseThroughProvider(rp20Request, opReq => {
				Assert.AreEqual(ProtocolVersion.V20, opReq.RelyingPartyVersion);
				opReq.IsAuthenticated = true;
			});
		}
	}
}
generated by cgit v1.1 at 2025-06-08 08:54:54 +0000